Collaborate Disseminate
With two proof-of-concept (PoC) exploits made public late last week, CVE-2025-25257 – a critical SQL command injection vulnerability in Fortinet’s FortiWeb web application firewall – is expected to be leveraged by attackers soon. Abou… Continue reading Exploits for unauthenticated FortiWeb RCE are public, so patch quickly! (CVE-2025-25257)
Threat actors are actively exploiting a recently fixed remote code execution vulnerability (CVE-2025-47812) in Wing FTP Server, security researchers have warned. Wing FTP Server and CVE-2025-47812 Wing FTP Server is a commercial file transfer server so… Continue reading Critical Wing FTP Server vulnerability exploited in the wild (CVE-2025-47812)
Four individuals suspected of having been involved in the ransomware attacks that hit UK-based retailers earlier this year have been arrested by the UK National Crime Agency. “Two males aged 19, another aged 17, and a 20-year-old female were appr… Continue reading Four arrested in connection with M&S, Co-op ransomware attacks
Claroty researcher Noam Moshe has discovered serious vulnerabilities in two Ruckus Networks (formerly Ruckus Wireless) products that may allow attackers to compromise the environments managed by the affected software, Carnegie Mellon University’s CERT … Continue reading Ruckus network management solutions riddled with unpatched vulnerabilities
“In today’s fast-paced digital landscape” – as AI chatbots are fond of phrasing it – a cyber attack targeting your organization is a statistical certainty. But is your security team ready to respond when it happens? Can th… Continue reading Train smarter, respond faster: Close the skill gaps in your SOC
For July 2025 Patch Tuesday, Microsoft has released patches for 130 vulnerabilities, among them one that’s publicly disclosed (CVE-2025-49719) and a wormable RCE bug on Windows and Windows Server (CVE-2025-47981). CVE-2025-49719 and CVE-2025-4971… Continue reading Microsoft fixes critical wormable Windows flaw (CVE-2025-47981)
With PoC exploits for CVE-2025-5777 (aka CitrixBleed 2) now public and reports of active exploitation of the flaw since mid-June, you should check whether your Citrix NetScaler ADC and/or Gateway instances have been probed and compromised by attackers…. Continue reading Check for CitrixBleed 2 exploitation even if you patched quickly! (CVE-2025-5777)
Popular AI chatbots powered by large language models (LLMs) often fail to provide accurate information on any topic, but researchers expect threat actors to ramp up their efforts to get them to spew out information that may benefit them, such as phishi… Continue reading You can’t trust AI chatbots not to serve you phishing pages, malicious downloads, or bad code
Cisco has found a backdoor account in yet another of its software solutions: CVE-2025-20309, stemming from default credentials for the root account, could allow unauthenticated remote attackers to log into a vulnerable Cisco Unified Communications Mana… Continue reading Cisco fixes maximum-severity flaw in enterprise unified comms platform (CVE-2025-20309)
Qantas has suffered a cyber incident that has lead to a data breach. “The incident occurred when a cyber criminal targeted a call centre and gained access to a third-party customer servicing platform,” the Australian airline announced today… Continue reading Qantas data breach could affect 6 million customers